Headline
CVE-2023-25654: fix CVE-2023-25654 · baserproject/basercms@60f8305
baserCMS is a Content Management system. Prior to version 4.7.5, there is a Remote Code Execution (RCE) Vulnerability in the management system of baserCMS. Version 4.7.5 contains a patch.
@@ -932,14 +932,22 @@ public function fileCheck($check, $size)
public function fileExt($check, $exts)
{
$file = $check[key($check)];
if (!is_array($exts)) {
$exts = explode(',’, $exts);
}
// FILES形式のチェック
if (!empty($file[‘name’])) {
if (!is_array($exts)) {
$exts = explode(',’, $exts);
}
$ext = decodeContent($file[‘type’], $file[‘name’]);
if (in_array($ext, $exts)) {
return true;
} else {
if (!in_array($ext, $exts)) {
return false;
}
}
// 更新時の文字列チェック
if (is_string($file)) {
$ext = pathinfo($file, PATHINFO_EXTENSION);
if (!in_array($ext, $exts)) {
return false;
}
}
Related news
### Impact There is a Remote Code Execution (RCE) Vulnerability on the management system of baserCMS. ### Target baserCMS 4.7.3 and earlier versions ### Patches Update to the latest version of baserCMS ### Credits 島峰泰平@三井物産セキュアディレクション株式会社